[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4BnAgGvlAWLDOdzVK0X06YJ0ylzXV5oH6Cmbe3VqlNU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":20,"download_link":21,"security_score":22,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24,"vulnerabilities":25,"developer":26,"crawl_stats":23,"alternatives":31,"analysis":32,"fingerprints":91},"affilicode-tag-setting","Affilicode-Tag-Setting","1.0.1","leafworks","https:\u002F\u002Fprofiles.wordpress.org\u002Fleafworks\u002F","\u003Cp>Affilicode-Tag-Settingは、固定ページ、投稿ページにアフィリコード・システムが発行したトラッキングタグを設置できるプラグインです。\u003C\u002Fp>\n\u003Cp>出力箇所はhead内、body内から選択可能。\u003Cbr \u002F>\nトラッキングタグ（着地点タグ、中間地点タグ、成果地点タグ）、コンテナタグの出力にご利用いただけます。\u003C\u002Fp>\n","固定ページと投稿ページにアフィリコード・システムで発行したタグの設定が可能になります。",80,1729,0,"2024-07-18T01:19:00.000Z","6.6.5","4.8.1","",[19],"%e3%82%a2%e3%83%95%e3%82%a3%e3%83%aa%e3%82%b3%e3%83%bc%e3%83%89%e3%83%bb%e3%82%b7%e3%82%b9%e3%83%86%e3%83%a0","https:\u002F\u002Fja.wordpress.org\u002Fplugins\u002Faffilicode-tag-setting","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faffilicode-tag-setting.1.0.1.zip",92,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":11,"avg_security_score":22,"avg_patch_time_days":28,"trust_score":29,"computed_at":30},1,30,88,"2026-04-05T03:57:02.934Z",[],{"attackSurface":33,"codeSignals":60,"taintFlows":83,"riskAssessment":84,"analyzedAt":90},{"hooks":34,"ajaxHandlers":56,"restRoutes":57,"shortcodes":58,"cronEvents":59,"entryPointCount":13,"unprotectedCount":13},[35,41,45,48,52],{"type":36,"name":37,"callback":38,"file":39,"line":40},"action","admin_menu","affilicode_tag_hook","affilicode-tag-setting.php",19,{"type":36,"name":42,"callback":43,"file":39,"line":44},"save_post","affilicode_save_h",20,{"type":36,"name":42,"callback":46,"file":39,"line":47},"affilicode_save_b",21,{"type":36,"name":49,"callback":50,"file":39,"line":51},"wp_head","affilicode_show_h",22,{"type":36,"name":53,"callback":54,"file":39,"line":55},"wp_footer","affilicode_show_b",23,[],[],[],[],{"dangerousFunctions":61,"sqlUsage":62,"outputEscaping":64,"fileOperations":13,"externalRequests":13,"nonceChecks":65,"capabilityChecks":13,"bundledLibraries":82},[],{"prepared":13,"raw":13,"locations":63},[],{"escaped":65,"rawEcho":66,"locations":67},2,6,[68,72,73,76,78,80],{"file":69,"line":70,"context":71},"show.php",10,"raw output",{"file":69,"line":55,"context":71},{"file":74,"line":75,"context":71},"tag-input.php",7,{"file":74,"line":77,"context":71},8,{"file":74,"line":79,"context":71},12,{"file":74,"line":81,"context":71},13,[],[],{"summary":85,"deductions":86},"The \"affilicode-tag-setting\" plugin v1.0.1 presents a generally positive security posture based on the static analysis provided.  The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the potential attack surface. Furthermore, the code demonstrates good practices by exclusively using prepared statements for SQL queries and incorporating nonce checks.  The lack of file operations and external HTTP requests also reduces potential vulnerabilities.\n\nHowever, a notable concern arises from the low rate of proper output escaping (25%). This indicates that while the plugin might be shielded from common injection attacks like SQLi due to prepared statements, it remains susceptible to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not adequately sanitized before being displayed to users.  The absence of recorded vulnerabilities in its history is a positive sign, suggesting either a history of secure development or a lack of prior scrutiny.  Despite the limited attack surface and good SQL handling, the output escaping issue warrants attention to prevent potential client-side attacks.",[87],{"reason":88,"points":89},"Low output escaping rate (25%)",5,"2026-03-16T21:25:42.157Z",{"wat":92,"direct":97},{"assetPaths":93,"generatorPatterns":94,"scriptPaths":95,"versionParams":96},[],[],[],[],{"cssClasses":98,"htmlComments":99,"htmlAttributes":100,"restEndpoints":101,"jsGlobals":102,"shortcodeOutput":103},[],[],[],[],[],[104,105,106,107],"\u003Cp>▼head内出力タグ\u003C\u002Fp>","\u003Cp>※コンテナタグを使用する場合、body内出力タグへの入力は不要です。\u003C\u002Fp>","\u003Cbr>","\u003Cp>▼body内出力タグ\u003C\u002Fp>"]